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WHAT IS CLAIMED IS: 

1. An apparatus for executing authentication in a 
network environment, comprising: 

a packet gateway operable to retrieve a group 
5 profile from an authentication, authorization, and 
accounting (AAA) server in response to receiving a 
request from a first end user and to locally cache the 
group profile, the packet gateway being operable to 
provide a service to the first end user based on 

10 information included within the group profile and 
associated with the first end user, wherein the packet 
gateway is further operable to receive a request from a 
second end user and to determine if the second end user 
is included within the group profile such that in cases 

15 where the second end user is included in the group 
profile the packet gateway can locally cache the group 
profile in order to provide a service to the second end 
user without having to communicate with the AAA server. 

2 0 2. The apparatus of Claim 1, wherein the group 

profile includes a plurality of end users that share a 
common prefix associated with their mobile station 
identifiers (MSIDs) . 

25 3. The apparatus of Claim 1, wherein if the second 

end user is not in the group profile associated with the 
first end user, then the packet gateway may initiate a 
request to the AAA server in order to attempt to identify 
a profile associated with the second end user. 
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4. The apparatus of Claim 1, wherein if the group 
profile associated with first end user has expired, the 
packet gateway may initiate a request to the AAA server 

5 for a valid profile that corresponds to the first end 
user. 

5. The apparatus of Claim 1, wherein each group 
profile includes an expiration time such that if the 

10 group profile is identified as having expired, it may be 
expunged . 

6. The apparatus of Claim 1, further comprising: 

a centralized server operable to store a plurality 
15 of group profiles and to return requested group profiles 
to the packet gateway so that they can be locally cached. 

7. The apparatus of Claim 1, wherein the packet 
gateway includes a table operable to store one or more 

2 0 group profiles that may be locally cached. 



ATTORNEY'S DOCKET 
062891 . 1130 



26 



PATENT APPLICATION 



8. A method for executing authentication in a 
network environment, comprising: 

retrieving a group profile from an authentication, 
authorization, and accounting (AAA) server in response to 
5 receiving a request from a first end user; 
locally caching the group profile; 

providing a service to the first end user based on 
information included within the group profile and 
associated with the first end user; 

10 receiving a request from a second end user; and 

determining if the second end user is included 
within the group profile such that in cases where the 
second end user is included in the group profile the 
group profile can be locally cached in order to provide a 

15 service to the second end user without having to 
communicate with the AAA server. 

9. The method of Claim 8, wherein the group 
profile includes a plurality of end users that share a 

20 common prefix associated with their mobile station 
identifiers (MSIDs) . 

10. The method of Claim 8, wherein if the second 
end user is not in the group profile associated with the 

25 first end user, then a request is communicated to the AAA 
server in order to attempt to identify a profile 
associated with the second end user. 
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11. The method of Claim 8, wherein if the group 
profile associated with first end user has expired, a 
request may be communicated to the AAA server for a valid 

5 profile that corresponds to the first end user. 

12. The method of Claim 8, further comprising: 
storing a plurality of group profiles; and 
returning requested group profiles such that they 

10 can be locally cached. 
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13. A system for executing authentication in a 
network environment, comprising: 

means for retrieving a group profile from an 
authentication, authorization, and accounting (AAA) 
5 server in response to receiving a request from a first 
end user; 

means for locally caching the group profile; 

means for providing a service to the first end user 
based on information included within the group profile 
10 and associated with the first end user; 

means for receiving a request from a second end 
user; and 

means for determining if the second end user is 
included within the group profile such that in cases 
15 where the second end user is included in the group 
profile the group profile can be locally cached in order 
to provide a service to the second end user without 
having to communicate with the AAA server. 

20 14. The system of Claim 13, wherein the group 

profile includes a plurality of end users that share a 

common prefix associated with their mobile station 
identifiers (MSIDs) . 

25 15. The system of Claim 13, wherein if the second 

end user is not in the group profile associated with the 
first end user, then a request is communicated to the AAA 
server in order to attempt to identify a profile 
associated with the second end user. 
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16. The system of Claim 13, wherein if the group 
profile associated with first end user has expired, a 
request may be communicated to the AAA server for a valid 

5 profile that corresponds to the first end user. 

17. The system of Claim 13, further comprising: 
means for storing a plurality of group profiles; and 
means for returning requested group profiles such 

10 that they can be locally cached. 
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18. Software for executing authentication in a 
network environment, the software being embodied in a 
computer readable medium and comprising computer code 
such that when executed is operable to: 

retrieve a group profile from an authentication, 
authorization, and accounting (AAA) server in response to 
receiving a request from a first end user; 

locally cache the group profile; 

provide a service to the first end user based on 
information included within the group profile and 
associated with the first end user; 

receive a request from a second end user; and 
determine if the second end user is included within 
the group profile such that in cases where the second end 
user is included in the group profile the group profile 
can be locally cached in order to provide a service to 
the second end user without having to communicate with 
the AAA server. 

19 . The computer readable medium of Claim 18 , 
wherein the group profile includes a plurality of end 
users that share a common prefix associated with their 
mobile station identifiers (MSIDs) . 

20. The computer readable medium of Claim 18, 
wherein if the second end user is not in the group 
profile associated with the first end user, then a 
request is communicated to the AAA server in order to 
attempt to identify a profile associated with the second 
end user. 
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21. The computer readable medium of Claim 18, 
wherein if the group profile associated with first end 
user has expired, a request may be communicated to the 
AAA server for a valid profile that corresponds to the 
first end user. 

22. The computer readable medium of Claim 18, 
wherein in the code is further operable to: 

store a plurality of group profiles; and 
return requested group profiles such that they can 
be locally cached. 



